URLhaus Database

You are currently viewing the URLhaus database entry for http://michna.de/cgi-bin/attach/LUHJFwPAGqOw/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	447641
URL:	http://michna.de/cgi-bin/attach/LUHJFwPAGqOw/
URL Status:	Offline
Host:	michna.de
Date added:	2020-08-31 18:55:05 UTC
Last online:	2020-09-02 10:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-08-31 18:56:12 UTC to abuse{at}strato[dot]de)
Takedown time:	1 day, 15 hours, 43 minutes (down since 2020-09-02 10:39:49 UTC)
Tags:	emotet epoch3 exe heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-09-02	000026741wGe5.exe	exe	35ea3435b146aa1a08f26a15d73ab5bf4404734049b1f27e4836e532c5e1abd8	n/a	Heodo
2020-09-02	0175.exe	exe	fe172eb48b314c722614e91c80cbf3c3f694fcfbdd180b6b4861964c34403247	n/a	Heodo
2020-09-02	0002395610TfLSC.exe	exe	641ca1c4700af3f223ba9b98c0d843c3acc34a5331862c41b68c244db6a8c6b2	n/a	Heodo
2020-09-02	FbeUTzWuCqED.exe	exe	bfc115b7e3f2a28f53a62debb71e9e6009da27ccd5babdf32f4fa03142427348	n/a	Heodo
2020-09-02	01241517406854rF0cSvOgjXx.exe	exe	bd3dc4657de66d33ce2f2cac43529cef3d5da66258c992cb8d9674f957e84473	16.18%	Heodo
2020-09-02	Tc9tF56OD5007.exe	exe	b6c7c65fcf04c8cbc8b9be5e4e6cc6948239df9bacd6230d5a22a341e5066c9d	8.70%	Heodo
2020-09-01	EU9lx195158760.exe	exe	b9cae66117965dd38dbce964d87c11899129e576754f98af23af9f8d7e6266c7	7.46%	Heodo
2020-09-01	j3DTy5jh5669110962720.exe	exe	43f9eacf99a6289eb8d428ae5ad0af1b0964f13c84b562de78ef47b8d6591ca5	17.39%	Heodo
2020-09-01	04003431459596GANoZFg.exe	exe	e2b852633d2db77557225d68366a987af43438dc39617d45a76de4def486d925	n/a	Heodo
2020-09-01	l7oT00024.exe	exe	852331ad17fbc4298321d591d9647d0c25866b5c98c825de2405b23d3e7a70f1	n/a	Heodo
2020-09-01	RL2yffka2Wun.exe	exe	80a3f89ac4d0db1075f14e8a20ea647449506bc99da845928b2ad1fb611dbdd3	n/a	Heodo
2020-09-01	001493210817.exe	exe	73cf905d840325cbde42b76151f6eeea251ae53a46840dcaa80d32f2909374c9	n/a	Heodo
2020-09-01	1423.exe	exe	73ab3e38dfd1c7a48d4badadf811e7ad08a1c0afe7e848a496474651ebcbc64f	n/a	Heodo
2020-09-01	NfGjV14993635522579.exe	exe	1d0c57fc0f686ed41c4310a50e56f0355c4b7971990dfa7b3bb1b5d5d3c04a7f	n/a	Heodo
2020-09-01	kdmp9xY7Zf8005.exe	exe	e49f2c7da7df7c7220fa9f1d6de8b59adc21aa6125c476824f1457b83487b441	n/a	Heodo
2020-09-01	GVHiBj1495370636236.exe	exe	87c43dd70ec84576a1d02e37a8e01b078840b5cb865ff47635269aa47b389eb3	n/a	Heodo
2020-09-01	nSNMilS.exe	exe	2fd8d56596b9e32cf8180dc9f906c7578e1f717007671c5430bf7f7331c917b4	n/a	Heodo
2020-09-01	00202110368.exe	exe	f449c9ed1f575b7023d5c809f220cb2ecd22432b548e29133318c43fc14d1ede	n/a	Heodo
2020-09-01	000061303408OFggzYyenEMX.exe	exe	3b99185aebf25c4b2cf644306160ff5f216d206722b4994181f05205ee5a20fb	n/a	Heodo
2020-09-01	cw58.exe	exe	533947478fa52473d70773991ba614f0ffdac44b77035ee14bc93882995db5f7	n/a	Heodo
2020-09-01	00039.exe	exe	e902dcbe0abec17a2e63e93e703ec1c9d8d9363763bbe6235f5193d59a4ba395	n/a	Heodo
2020-09-01	jIa3233.exe	exe	5ade48ed031e04c5f2fe2c54c2ebcf1c6d1dff3300dcd7e84dac487a1d67c643	n/a	Heodo
2020-09-01	000095S7jOTia.exe	exe	90e2e15ce4f660291584c258df0b563ef2fc4215f15c240cf78b8928b499a035	n/a	Heodo
2020-09-01	rmc6M401712.exe	exe	044996ad8b346a580c1dff8a75caf8a66037cc0f1891a709c2a976d51eb936b6	n/a	Heodo
2020-09-01	034864144567.exe	exe	4c8814b5b8a7259d490b12f6cc15ba51512d87cd1b279b1a8e4eb8ad557d95ea	n/a	Heodo
2020-09-01	mSHR07142589.exe	exe	f212d6193ae7b017efce342e27a19bf1555d7a510a0563fdafb4d293a543b175	15.71%	Heodo
2020-09-01	eZZ38rew422781820967.exe	exe	f701ef0a7ea221c106ff501e21ac754b43a1ebbd3017cc9dcae067b80e4024af	11.94%	Heodo
2020-09-01	LdG7UYz1Feiu.exe	exe	21ec25f7dcf7d5cd89a1e6b74be5955b53bd9c48880c0305b2b688a18e5e76aa	n/a	Heodo
2020-09-01	Rd2BQrbl73069579935.exe	exe	b2549b7e9605575f6437534123413418415fbee583a5071fae4333b89eb66863	n/a	Heodo
2020-09-01	5778526.exe	exe	7029865a09cc3be2643e39e15ad94b450f446cf3365035096542acd37f9df0e9	13.04%	Heodo
2020-09-01	0003136541geEbEYTjzeVv.exe	exe	42fb3ddf8eaa57ddd8f59b7b8e167fcf1a6dbb97c76ff20610af27d697a4fc16	13.04%	Heodo
2020-09-01	X01492429837184.exe	exe	a4e804077d565e4bbfa7e04f4e3c3758280c257b95ee64bbd83146bf159cf174	n/a	Heodo
2020-09-01	pcIllZGBR.exe	exe	3d7a0acfd99657adb697ede61692095bf4135d34c858da29d8159ea0f059d7f0	8.70%	Heodo
2020-09-01	Y9Q04762.exe	exe	c824405527929b0430cb4e7bce049506520e15612dcdca724378eeeb026f05b9	n/a	Heodo
2020-09-01	yRe0000072572189.exe	exe	030d2079f27a383e5c4a91514a5e1bd9f8f3f65c1fabdeabd33f2249fee4f5e6	n/a	Heodo
2020-09-01	fnK.exe	exe	59e726352b7d2cb02b2eb9a3a796fe54aefef95d869541aeb503462750063604	8.96%	Heodo
2020-09-01	215598dl2E.exe	exe	648774f33f4cb8a92c3e7a28d2aca2ac224485c59e21e7dc22a3d5f42b32d8ff	8.70%	Heodo
2020-09-01	UbRBd73D.exe	exe	8dbe52dae4d45f79ca3db98dc983999b5a5bfb0465d2b11b2d8bc855b659a4f7	n/a	Heodo
2020-09-01	m5oS.exe	exe	9ebc7d9bdf7db5bc37cf1c54ae813803a0067809d9752c4f8644def75c45ab78	n/a	Heodo
2020-09-01	tUK.exe	exe	4a07be1e55ccd859b7c1f41c47fa6ba97c073a981ec08617f98ce923a3bda418	n/a	Heodo
2020-08-31	l29uxpaB050336730820.exe	exe	685f2be45a4cbb4e68d5ce68725add860f9dc3c7586d41084d754739252da8c5	15.94%	Heodo
2020-08-31	08295713805445.exe	exe	bffebdc528cd9ec678f8ebd7167b822d398534abafca0704669a0f169aff2467	n/a	Heodo
2020-08-31	LJM9DVdS97.exe	exe	af142b7fe2c82f2d6b15556a8878fa264d769cb69c0a991898c58d40d610ca6f	17.65%	Heodo